| www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 | 91.216.248.21 | 200 OK | 1.9 kB |
URL User Request GET HTTP/2www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 IP91.216.248.21:443
CertificateIssuerLet's Encrypt Subject2ix.de Fingerprint6D:23:88:79:D2:23:F7:9B:98:C5:59:9A:80:28:0F:C6:93:DF:63:8A ValidityFri, 19 Apr 2024 01:11:06 GMT - Thu, 18 Jul 2024 01:11:05 GMT
File typeHTML document, ASCII text, with very long lines (747), with CRLF line terminators Hash47eade1756f4b499ea85afd248691846 ec962e04a12addac7b7e7c4a9386c55d7f56b650 a5ca3e653a447b352c230dadafe05d5ce31085c8619d7fa26f89d87939903a77
GET /webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 HTTP/1.1
Host: www-online-targo-de-ref2016.2ix.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 17:29:28 GMT
content-type: text/html; charset-UTF-8;charset=UTF-8
content-length: 1872
x-lima-id: atbrPsGIPM0Pvq5feX
x-powered-by: PHP/8.1.27
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: _lcp=a; Path=/; expires=Mon Mar 20 2034 13:02:58; SameSite=Lax; HttpOnly
PHPSESSID=375ab4bf72f674a9ca625dd1450bc4e4; path=/
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| www-online-targo-de-ref2016.2ix.de/webapps/web/layout/css/main.css | 91.216.248.21 | 200 OK | 2.4 kB |
URL GET HTTP/2www-online-targo-de-ref2016.2ix.de/webapps/web/layout/css/main.css IP91.216.248.21:443
Requested byhttps://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 CertificateIssuerLet's Encrypt Subject2ix.de Fingerprint6D:23:88:79:D2:23:F7:9B:98:C5:59:9A:80:28:0F:C6:93:DF:63:8A ValidityFri, 19 Apr 2024 01:11:06 GMT - Thu, 18 Jul 2024 01:11:05 GMT
File typeUnicode text, UTF-8 text, with very long lines (12270) Hash298c42b064cdbbabc80e2a9687932ce8 02dfb1d531b53a2ba9731726435ffa3777923e9e 7106b0de91fc12195fe85d21b41c84e4c4b60c6cc303ca2f1a1566e16bf44fea
GET /webapps/web/layout/css/main.css HTTP/1.1
Host: www-online-targo-de-ref2016.2ix.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546
Cookie: _lcp=a; PHPSESSID=375ab4bf72f674a9ca625dd1450bc4e4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 17:29:28 GMT
content-type: text/css
content-length: 2376
x-lima-id: atu7w56CLH2l86Avxp
set-cookie: _lcp2=a; Path=/; expires=Mon Mar 20 2034 13:02:58; SameSite=Lax; HttpOnly
last-modified: Tue, 23 Apr 2024 14:52:55 GMT
etag: "311c-616c4b5841fc0-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 24 May 2024 17:29:28 GMT
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/logo.png | 91.216.248.21 | 200 OK | 1.0 kB |
URL GET HTTP/2www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/logo.png IP91.216.248.21:443
Requested byhttps://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 CertificateIssuerLet's Encrypt Subject2ix.de Fingerprint6D:23:88:79:D2:23:F7:9B:98:C5:59:9A:80:28:0F:C6:93:DF:63:8A ValidityFri, 19 Apr 2024 01:11:06 GMT - Thu, 18 Jul 2024 01:11:05 GMT
File typePNG image data, 105 x 60, 4-bit colormap, non-interlaced Hash72f6b978de97104fc108c0f51d0ec357 32a345fb1c3c1f7bcf2e4e5250da0df748f6c36f 14b35e728a11ebaa486217f6c05103335902d1bdcbe2e7640a6df44f8b7f936a
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /webapps/web/layout/img/logo.png HTTP/1.1
Host: www-online-targo-de-ref2016.2ix.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546
Cookie: _lcp=a; PHPSESSID=375ab4bf72f674a9ca625dd1450bc4e4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 17:29:28 GMT
content-type: image/png
content-length: 1029
x-lima-id: atTEstZpB7E5ZnjVoY
set-cookie: _lcp2=a; Path=/; expires=Mon Mar 20 2034 13:02:58; SameSite=Lax; HttpOnly
last-modified: Tue, 23 Apr 2024 14:52:54 GMT
etag: "405-616c4b574dd80"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 24 May 2024 17:29:28 GMT
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/search.png | 91.216.248.21 | 200 OK | 650 B |
URL GET HTTP/2www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/search.png IP91.216.248.21:443
Requested byhttps://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 CertificateIssuerLet's Encrypt Subject2ix.de Fingerprint6D:23:88:79:D2:23:F7:9B:98:C5:59:9A:80:28:0F:C6:93:DF:63:8A ValidityFri, 19 Apr 2024 01:11:06 GMT - Thu, 18 Jul 2024 01:11:05 GMT
File typePNG image data, 300 x 40, 8-bit colormap, non-interlaced Hash73357923a9b80d3cf8eb2fed2d03ded1 b10df5d5ac3fab3261c7f53441faeb6d7dbc3f60 e78a7546181abd93801044ffa526b2716da93bfdf3062f68ebf51fb7327dd6ef
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /webapps/web/layout/img/search.png HTTP/1.1
Host: www-online-targo-de-ref2016.2ix.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546
Cookie: _lcp=a; PHPSESSID=375ab4bf72f674a9ca625dd1450bc4e4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 17:29:28 GMT
content-type: image/png
content-length: 650
x-lima-id: attwFDwq4LwBCk2VCs
set-cookie: _lcp2=a; Path=/; expires=Mon Mar 20 2034 13:02:58; SameSite=Lax; HttpOnly
last-modified: Tue, 23 Apr 2024 14:52:54 GMT
etag: "28a-616c4b574dd80"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 24 May 2024 17:29:28 GMT
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/keyboard.png | 91.216.248.21 | 200 OK | 315 B |
URL GET HTTP/2www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/keyboard.png IP91.216.248.21:443
Requested byhttps://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 CertificateIssuerLet's Encrypt Subject2ix.de Fingerprint6D:23:88:79:D2:23:F7:9B:98:C5:59:9A:80:28:0F:C6:93:DF:63:8A ValidityFri, 19 Apr 2024 01:11:06 GMT - Thu, 18 Jul 2024 01:11:05 GMT
File typePNG image data, 26 x 26, 8-bit colormap, non-interlaced Hash5219eaeae32f52069d1a03bfcab1dc05 83651ca949bbf5bee9dfe34af319a76a6846241e 09347f6a4e4d4863e0a665b0bff9c9d17a5b022b4fff6ceb185c3dde0f087494
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /webapps/web/layout/img/keyboard.png HTTP/1.1
Host: www-online-targo-de-ref2016.2ix.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546
Cookie: _lcp=a; PHPSESSID=375ab4bf72f674a9ca625dd1450bc4e4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 17:29:28 GMT
content-type: image/png
content-length: 315
x-lima-id: atIZ7satKfLihkpgco
set-cookie: _lcp2=a; Path=/; expires=Mon Mar 20 2034 13:02:58; SameSite=Lax; HttpOnly
last-modified: Tue, 23 Apr 2024 14:52:54 GMT
etag: "13b-616c4b574dd80"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 24 May 2024 17:29:28 GMT
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/banner_1.png | 91.216.248.21 | 200 OK | 8.9 kB |
URL GET HTTP/2www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/banner_1.png IP91.216.248.21:443
Requested byhttps://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 CertificateIssuerLet's Encrypt Subject2ix.de Fingerprint6D:23:88:79:D2:23:F7:9B:98:C5:59:9A:80:28:0F:C6:93:DF:63:8A ValidityFri, 19 Apr 2024 01:11:06 GMT - Thu, 18 Jul 2024 01:11:05 GMT
File typePNG image data, 120 x 90, 8-bit colormap, non-interlaced Hashc8ee8d128a5e005192a4f659ef174956 e1829ca34f1eebdc252a5d5c999171acf4238bed 96ecab11ca4a18e2fa96a9b5683187ad779b2762f1ae904ed65aebe0d7247cc2
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /webapps/web/layout/img/banner_1.png HTTP/1.1
Host: www-online-targo-de-ref2016.2ix.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546
Cookie: _lcp=a; PHPSESSID=375ab4bf72f674a9ca625dd1450bc4e4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 17:29:28 GMT
content-type: image/png
content-length: 8908
x-lima-id: atBsHwpP5idj9T8dO9
set-cookie: _lcp2=a; Path=/; expires=Mon Mar 20 2034 13:02:58; SameSite=Lax; HttpOnly
last-modified: Tue, 23 Apr 2024 14:52:55 GMT
etag: "22cc-616c4b5841fc0"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 24 May 2024 17:29:28 GMT
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/aside_1.png | 91.216.248.21 | 200 OK | 3.8 kB |
URL GET HTTP/2www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/aside_1.png IP91.216.248.21:443
Requested byhttps://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 CertificateIssuerLet's Encrypt Subject2ix.de Fingerprint6D:23:88:79:D2:23:F7:9B:98:C5:59:9A:80:28:0F:C6:93:DF:63:8A ValidityFri, 19 Apr 2024 01:11:06 GMT - Thu, 18 Jul 2024 01:11:05 GMT
File typePNG image data, 190 x 355, 8-bit colormap, non-interlaced Hash751069444736dae231c3e84bd1128b8a 5b3974fad05a913c2e42faf07e052ac8593840eb 69d23c696ace7e88ea64474450d8cc42f27fe298e268c60a4c0f9e4d375a45c3
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /webapps/web/layout/img/aside_1.png HTTP/1.1
Host: www-online-targo-de-ref2016.2ix.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546
Cookie: _lcp=a; PHPSESSID=375ab4bf72f674a9ca625dd1450bc4e4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 17:29:28 GMT
content-type: image/png
content-length: 3843
x-lima-id: atV9Zhxv4mzVxbFPi8
set-cookie: _lcp2=a; Path=/; expires=Mon Mar 20 2034 13:02:58; SameSite=Lax; HttpOnly
last-modified: Tue, 23 Apr 2024 14:52:55 GMT
etag: "f03-616c4b5841fc0"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 24 May 2024 17:29:28 GMT
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/footer.png | 91.216.248.21 | 200 OK | 14 kB |
URL GET HTTP/2www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/footer.png IP91.216.248.21:443
Requested byhttps://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 CertificateIssuerLet's Encrypt Subject2ix.de Fingerprint6D:23:88:79:D2:23:F7:9B:98:C5:59:9A:80:28:0F:C6:93:DF:63:8A ValidityFri, 19 Apr 2024 01:11:06 GMT - Thu, 18 Jul 2024 01:11:05 GMT
File typePNG image data, 960 x 357, 8-bit colormap, non-interlaced Hashdb6a25f5766282c3e6a5cad3a79aaf9d e18428ce9c79025973667b3542ca7075fa30c210 2362595d4adabb5a7119d6ac37ab03d9e39ffc5ed49bd41adfbc0ffddc14b7ed
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /webapps/web/layout/img/footer.png HTTP/1.1
Host: www-online-targo-de-ref2016.2ix.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546
Cookie: _lcp=a; PHPSESSID=375ab4bf72f674a9ca625dd1450bc4e4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 17:29:28 GMT
content-type: image/png
content-length: 14375
x-lima-id: atCSdVKwpYc5MwsKVV
set-cookie: _lcp2=a; Path=/; expires=Mon Mar 20 2034 13:02:58; SameSite=Lax; HttpOnly
last-modified: Tue, 23 Apr 2024 14:52:54 GMT
etag: "3827-616c4b574dd80"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 24 May 2024 17:29:28 GMT
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/semantic-ui@2.4.2/dist/semantic.min.css | 151.101.65.229 | 200 OK | 108 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/semantic-ui@2.4.2/dist/semantic.min.css IP151.101.65.229:443
Requested byhttps://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with very long lines (59894) Size108 kB (107615 bytes) Hashd4bf675e63729054e6efe9bde86a761e c41b559e345ce6988e259c8529b864d10c7160e4 5177ac8b16de2e407f518c554f3ba3fe0837f8b333830026837cc3f82e190124
GET /npm/semantic-ui@2.4.2/dist/semantic.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www-online-targo-de-ref2016.2ix.de/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 2.4.2
x-jsd-version-type: version
etag: W/"99738-xBtVnjRc5piOJZyFKbhk0QxxYOQ"
content-encoding: br
accept-ranges: bytes
date: Wed, 24 Apr 2024 17:29:28 GMT
age: 21283040
x-served-by: cache-fra-eddf8230050-FRA, cache-hel1410022-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 107615
X-Firefox-Spdy: h2
|
|
| www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/aside_2.png | 91.216.248.21 | 200 OK | 34 kB |
URL GET HTTP/2www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/aside_2.png IP91.216.248.21:443
Requested byhttps://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 CertificateIssuerLet's Encrypt Subject2ix.de Fingerprint6D:23:88:79:D2:23:F7:9B:98:C5:59:9A:80:28:0F:C6:93:DF:63:8A ValidityFri, 19 Apr 2024 01:11:06 GMT - Thu, 18 Jul 2024 01:11:05 GMT
File typePNG image data, 190 x 768, 8-bit colormap, non-interlaced Hash24301739ae0a2b846e30c3158b2b646b df97b38c8c5963f105757bb23576111e1cfb18d9 51dd2d5cd058a7c9eecae574a2896089032ee1e7c35adf3b0a9dfa2549e7fe5d
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /webapps/web/layout/img/aside_2.png HTTP/1.1
Host: www-online-targo-de-ref2016.2ix.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546
Cookie: _lcp=a; PHPSESSID=375ab4bf72f674a9ca625dd1450bc4e4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 17:29:28 GMT
content-type: image/png
content-length: 34401
x-lima-id: atXvxDgjrg3AjO25xL
set-cookie: _lcp2=a; Path=/; expires=Mon Mar 20 2034 13:02:58; SameSite=Lax; HttpOnly
last-modified: Tue, 23 Apr 2024 14:52:55 GMT
etag: "8661-616c4b5841fc0"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 24 May 2024 17:29:28 GMT
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/semantic-ui@2.4.2/dist/themes/default/assets/fonts/icons.woff2 | 151.101.65.229 | 200 OK | 40 kB |
URL GET HTTP/3cdn.jsdelivr.net/npm/semantic-ui@2.4.2/dist/themes/default/assets/fonts/icons.woff2 IP151.101.65.229:443
Requested byhttps://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 40148, version 1.0 Hash0ab54153eeeca0ce03978cc463b257f7 6ec6d36cb2464b4e821cfabb532f310bd342601c 434466b59545a8a1cac6ddb38197cdc6b35995a98c3f3812fb88d61b1c300dd3
GET /npm/semantic-ui@2.4.2/dist/themes/default/assets/fonts/icons.woff2 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www-online-targo-de-ref2016.2ix.de
DNT: 1
Connection: keep-alive
Referer: https://cdn.jsdelivr.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-length: 40148
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/woff2
x-jsd-version: 2.4.2
x-jsd-version-type: version
etag: W/"9cd4-bsbTbLJGS06CHPq7Uy8xC9NCYBw"
accept-ranges: bytes
date: Wed, 24 Apr 2024 17:29:28 GMT
age: 1503384
x-served-by: cache-fra-etou8220109-FRA, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|
|
| www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/ico.png | 91.216.248.21 | 200 OK | 355 B |
URL GET HTTP/2www-online-targo-de-ref2016.2ix.de/webapps/web/layout/img/ico.png IP91.216.248.21:443
Requested byhttps://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 CertificateIssuerLet's Encrypt Subject2ix.de Fingerprint6D:23:88:79:D2:23:F7:9B:98:C5:59:9A:80:28:0F:C6:93:DF:63:8A ValidityFri, 19 Apr 2024 01:11:06 GMT - Thu, 18 Jul 2024 01:11:05 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash3debee3ed5f77bf51f17b20b6ef163ca 75f23e4c6d17c1b15e3457b6cf19d859c44b312d 32f59da3dd8671278503227b34a313174baf91bcd5b751f28991bb50b78ee258
Analyzer | Verdict | Alert | urlquery | phishing | Phishing - Deutsche Kreditbank |
GET /webapps/web/layout/img/ico.png HTTP/1.1
Host: www-online-targo-de-ref2016.2ix.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546
Cookie: _lcp=a; PHPSESSID=375ab4bf72f674a9ca625dd1450bc4e4; _lcp2=a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 17:29:28 GMT
content-type: image/png
content-length: 355
x-lima-id: atF5lPzw2yY4W1cQQX
last-modified: Tue, 23 Apr 2024 14:52:54 GMT
etag: "163-616c4b574dd80"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 24 May 2024 17:29:28 GMT
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Lato:400,700,400italic,700italic&subset=latin | 142.250.74.106 | 200 OK | 2.9 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Lato:400,700,400italic,700italic&subset=latin IP142.250.74.106:443
Requested byhttps://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (2958), with no line terminators Hash618da2aa30fbaff301d1a6dfa0e5c3e5 9dbb1a84f1199569fdd297197540fabae79894c3 5a08b766e3817009291a59916a8f396d5b2b8f3c8fb024bc3b08bccf5a536487
GET /css?family=Lato:400,700,400italic,700italic&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.jsdelivr.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 17:29:28 GMT
date: Wed, 24 Apr 2024 17:29:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www-online-targo-de-ref2016.2ix.de/webapps/web/layout/js/main.js | 91.216.248.21 | 200 OK | 510 kB |
URL GET HTTP/2www-online-targo-de-ref2016.2ix.de/webapps/web/layout/js/main.js IP91.216.248.21:443
Requested byhttps://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546 CertificateIssuerLet's Encrypt Subject2ix.de Fingerprint6D:23:88:79:D2:23:F7:9B:98:C5:59:9A:80:28:0F:C6:93:DF:63:8A ValidityFri, 19 Apr 2024 01:11:06 GMT - Thu, 18 Jul 2024 01:11:05 GMT
Size510 kB (509879 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | urlquery | suspicious | Suspicious - Suspicious Javascript code |
GET /webapps/web/layout/js/main.js HTTP/1.1
Host: www-online-targo-de-ref2016.2ix.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www-online-targo-de-ref2016.2ix.de/webapps/web/login.php?tmx_id=a90e3b5b3d8abcb1c8d840d775ddd74890ada546
Cookie: _lcp=a; PHPSESSID=375ab4bf72f674a9ca625dd1450bc4e4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Wed, 24 Apr 2024 17:29:28 GMT
content-type: application/javascript
x-lima-id: atDGda9YxmzFz6Qnq9
set-cookie: _lcp2=a; Path=/; expires=Mon Mar 20 2034 13:02:58; SameSite=Lax; HttpOnly
last-modified: Tue, 23 Apr 2024 14:52:55 GMT
etag: "7c7b7-616c4b5841fc0-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Wed, 01 May 2024 17:29:28 GMT
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: upgrade-insecure-requests
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
|
|